{"id":10594,"date":"2014-04-23T12:13:07","date_gmt":"2014-04-23T12:13:07","guid":{"rendered":"http:\/\/www.journeytothecloud.com\/?p=3783"},"modified":"2014-04-23T12:13:07","modified_gmt":"2014-04-23T12:13:07","slug":"how-our-managed-services-team-responded-to-heartbleed","status":"publish","type":"post","link":"https:\/\/icloud.pe\/blog\/how-our-managed-services-team-responded-to-heartbleed\/","title":{"rendered":"How our Managed Services Team Responded to Heartbleed"},"content":{"rendered":"<p>By Jay Keating, Vice President of Managed Services<\/p>\n<p>&nbsp;<\/p>\n<p><span style=\"color: #000000; font-family: Calibri; font-size: medium;\">A lot has been written about the Heartbleed bug impacting versions of OpenSSL software in recent weeks. For an in-depth description of what Heartbleed is and how to respond to the vulnerability, you can refer to <\/span><a href=\"http:\/\/heartbleed.com\/\"><span style=\"color: #0000ff; font-family: Calibri; font-size: medium;\">http:\/\/heartbleed.com\/<\/span><\/a><span style=\"font-family: Calibri;\"><span style=\"color: #000000;\"><span style=\"font-size: medium;\"> or any number of 3<\/span><sup><span style=\"font-size: small;\">rd<\/span><\/sup><span style=\"font-size: medium;\"> party reports. This blog won\u2019t review the actual weakness, but rather describe how our Managed IT Services team responded to the incident in support of our customers.<\/span><\/span><\/span> <span id=\"more-3783\"><\/span><\/p>\n<p><span style=\"color: #000000; font-family: Calibri; font-size: medium;\">As software and hardware vendors release code updates to deal with vulnerabilities such as Heartbleed, our Managed IT Services team assesses overall risk in context to mitigating factors and then recommends a course of action. In the case of Heartbleed, since the scope was so broad, we prioritized our assessment in the following tiers:<\/span><\/p>\n<ol>\n<li>We quickly evaluated our internal systems and support tools. This important step had to happen immediately so our own management tools weren\u2019t creating risk or concern for our customers.<\/li>\n<li>We then evaluated all Managed IT Services customers\u2019 Internet-facing devices such as firewalls and web servers. All devices that were exposed have been patched at this point, and customers were notified of the risk and mitigation plan immediately. In this case, given the extent of the exposure, we declared emergency maintenance windows with our customers rather than wait for pre-approved monthly maintenance windows.<\/li>\n<li>Finally, with the Internet-facing systems no longer vulnerable, we have refocused on our customers\u2019 internal networks for the next round of assessments and mitigation. As we work through this phase, we will once again work collaboratively with our Managed IT Services customers to coordinate an acceptable maintenance window as soon as possible.<\/li>\n<\/ol>\n<p><span style=\"color: #000000; font-family: Calibri; font-size: medium;\">With Heartbleed still top of mind, I suggest a few moments of reflection to think through how your organization responded.\u00a0 Here are some questions to help frame your review:<\/span><\/p>\n<ul>\n<li>Do you have a formal security incident response program in place and was it useful in responding to Heartbleed? If not, who will manage your response and what process will be followed?<\/li>\n<li>How long did it take you to fully understand your risks? How long did you expect it to take?<\/li>\n<li>Do you have support and maintenance contracts in place for all components of your infrastructure, and are the support contact details documented within your security incident response plan?<\/li>\n<li>Who is responsible for internal and external communication in case you need to declare emergency maintenance periods?<\/li>\n<li>What will your staffing plan be if your team goes into extended hours of operation in response to a security threat?<\/li>\n<li>Who are your key IT delivery partners and what resources could they bring to your assistance if you need help with assessment, planning, communication, mitigation, and \/ or recovery?<span style=\"color: #000000; font-family: Calibri; font-size: medium;\">\u00a0<\/span><\/li>\n<\/ul>\n<p><span style=\"color: #000000; font-family: Calibri; font-size: medium;\">Just answering those six questions will improve your response program. Let us know <a title=\"Contact Us!\" href=\"http:\/\/www.journeytothecloud.com\/contact-us\/\">if we can help<\/a>.<\/span><\/p>\n<p><em>Learn more about how your organization can properly <a href=\"http:\/\/response.greenpages.com\/CMaaSBlogWhitepaper\">manage your IT environment<\/a><\/em><\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<div class=\"feedflare\">\n<a href=\"http:\/\/feeds.feedburner.com\/~ff\/JourneyToTheCloud?a=7Op9DQHcpRM:0djDOC4RylI:yIl2AUoC8zA\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/JourneyToTheCloud?d=yIl2AUoC8zA\" border=\"0\"><\/img><\/a> <a href=\"http:\/\/feeds.feedburner.com\/~ff\/JourneyToTheCloud?a=7Op9DQHcpRM:0djDOC4RylI:-BTjWOF_DHI\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/JourneyToTheCloud?i=7Op9DQHcpRM:0djDOC4RylI:-BTjWOF_DHI\" border=\"0\"><\/img><\/a> <a href=\"http:\/\/feeds.feedburner.com\/~ff\/JourneyToTheCloud?a=7Op9DQHcpRM:0djDOC4RylI:V_sGLiPBpWU\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/JourneyToTheCloud?i=7Op9DQHcpRM:0djDOC4RylI:V_sGLiPBpWU\" border=\"0\"><\/img><\/a> <a href=\"http:\/\/feeds.feedburner.com\/~ff\/JourneyToTheCloud?a=7Op9DQHcpRM:0djDOC4RylI:qj6IDK7rITs\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/JourneyToTheCloud?d=qj6IDK7rITs\" border=\"0\"><\/img><\/a>\n<\/div>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~r\/JourneyToTheCloud\/~4\/7Op9DQHcpRM\" height=\"1\" width=\"1\"\/><\/p>\n","protected":false},"excerpt":{"rendered":"<p>By Jay Keating, Vice President of Managed Services &nbsp; A lot has been written about the Heartbleed bug impacting versions of OpenSSL software in recent weeks. For an in-depth description of what Heartbleed is and how to respond to the vulnerability, you can refer to http:\/\/heartbleed.com\/ or any number of 3rd party reports. This blog&hellip;<a href=\"http:\/\/www.journeytothecloud.com\/featured\/managed-services-team-responded-heartbleed\/\">Read More &raquo;<\/a><\/p>\n","protected":false},"author":25,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[179,1860,47,1861],"tags":[],"class_list":["post-10594","post","type-post","status-publish","format-standard","hentry","category-featured","category-heartbleed","category-it-management","category-managed-it-services"],"_links":{"self":[{"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/posts\/10594","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/users\/25"}],"replies":[{"embeddable":true,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/comments?post=10594"}],"version-history":[{"count":0,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/posts\/10594\/revisions"}],"wp:attachment":[{"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/media?parent=10594"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/categories?post=10594"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/tags?post=10594"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}